Cyber security in an automotive network
First Claim
Patent Images
1. A method for preventing spoofing in an automotive network, the method comprising:
- tracking, by an electronic control unit of a vehicle, at least one message created by the electronic control unit and transmitted on a bus in the automotive network, the at least one message forming one of a plurality of messages transmitted among a plurality of electronic control units on the bus, the electronic control unit assigned a unique identifier;
monitoring, by the electronic control unit, data packets of the plurality of messages, each of the data packets including an identifier of a corresponding electronic control unit based on a routing plan; and
upon determining by the electronic control unit, in response to the monitoring, that an identifier contained in at least one of the data packets matches the unique identifier assigned to the electronic control unit and that the electronic control unit, responsive to the tracking, is not the creator of the at least one of the data packets, generating and transmitting a diagnostic message to at least one module in the automotive network over the bus, the diagnostic message instructing the at least one module to take no action on the at least one of the data packets.
3 Assignments
0 Petitions
Accused Products
Abstract
Preventing spoofing in an automotive network includes monitoring, by electronic control unit, data packets on a bus in the automotive network. Upon determining, in response to the monitoring, that a data packet is from a source other than the electronic control unit, the preventing spoofing in the automotive network includes generating and transmitting a diagnostic message to at least one module in the automotive network over the bus, the diagnostic message instructing the at least one module to take no action on the data packet.
-
Citations
18 Claims
-
1. A method for preventing spoofing in an automotive network, the method comprising:
-
tracking, by an electronic control unit of a vehicle, at least one message created by the electronic control unit and transmitted on a bus in the automotive network, the at least one message forming one of a plurality of messages transmitted among a plurality of electronic control units on the bus, the electronic control unit assigned a unique identifier; monitoring, by the electronic control unit, data packets of the plurality of messages, each of the data packets including an identifier of a corresponding electronic control unit based on a routing plan; and upon determining by the electronic control unit, in response to the monitoring, that an identifier contained in at least one of the data packets matches the unique identifier assigned to the electronic control unit and that the electronic control unit, responsive to the tracking, is not the creator of the at least one of the data packets, generating and transmitting a diagnostic message to at least one module in the automotive network over the bus, the diagnostic message instructing the at least one module to take no action on the at least one of the data packets. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for preventing spoofing in an automotive network, comprising:
-
an electronic control unit including a computer processor; and an application executable by the computer processor, the application configured to implement; tracking at least one message created by the electronic control unit and transmitted on a bus in the automotive network, the at least one message forming one of a plurality of messages transmitted among a plurality of electronic control units on the bus, the electronic control unit assigned a unique identifier; monitoring data packets of the plurality of messages, each of the data packets including an identifier of a corresponding electronic control unit based on a routing plan; and upon determining, in response to the monitoring, that an identifier contained in the at least one of the data packets matches the unique identifier assigned to the electronic control unit and that the electronic control unit, responsive to the tracking, is not the creator of the at least one of the data packets, generating and transmitting a diagnostic message to at least one module in the automotive network over the bus, the diagnostic message instructing the at least one module to take no action on the at least one of the data packets. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A computer program product for preventing spoofing in an automotive network, the computer program product comprising a non-transitory computer storage medium having instructions embodied thereon, which when executed by a processor of an electronic control unit cause the electronic control unit to implement:
-
tracking at least one message created by the electronic control unit and transmitted on a bus in the automotive network, the at least one message forming one of a plurality of messages transmitted among a plurality of electronic control units on the bus, the electronic control unit assigned a unique identifier; monitoring data packets of the plurality of messages, each of the data packets including an identifier of a corresponding electronic control unit based on a routing plan; and upon determining, in response to the monitoring, that an identifier contained in the at least one of the data packets matches the unique identifier assigned to the electronic control unit and that the electronic control unit, responsive to the tracking, is not the creator of the at least one of the data packets, generating and transmitting a diagnostic message to at least one module in the automotive network over the bus, the diagnostic message instructing the at least one module to take no action on the at least one of the data packets. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A method for preventing spoofing in an automotive network, the method comprising:
-
tracking, by an electronic control unit of a vehicle, at least one message created by the electronic control unit and transmitted on a bus in the automotive network, the at least one message forming one of a plurality of messages transmitted among a plurality of electronic control units on the bus, the electronic control unit assigned a unique identifier; monitoring, by the electronic control unit, data packets of the plurality of messages, each of the data packets including an identifier of a corresponding electronic control unit based on a routing plan; and upon determining by the electronic control unit, in response to the monitoring, that an identifier contained in at least one of the data packets matches the unique identifier assigned to the electronic control unit and that the electronic control unit, responsive to the tracking, is not the creator of the at least one of the data packets, performing a dominant override of data fields in the at least one of the data packets using a dominant state and a recessive state of a state machine implemented by the electronic control unit.
-
Specification